6a08ec10bcd0d6a99965076d17623e8cf14390d2161e021491413339a945a8ed

Sharing

Copy URL Twitter E-mail

General

Target

6a08ec10bcd0d6a99965076d17623e8cf14390d2161e021491413339a945a8ed
Size

749KB
MD5

f3339806b296ecb94b11843e002f5662
SHA1

62a5cabe9d6b6d32ce886f7c08ceb821f7c91d3c
SHA256

6a08ec10bcd0d6a99965076d17623e8cf14390d2161e021491413339a945a8ed
SHA512

3ff96108cd3f0d40f7dbaddccda7cad80b3521eccf8451554fd48beb255d5a5b21b03a39143eab336332c5145c1a8db33d7cbfb5b722136b7693d170a025bde9
SSDEEP

12288:zl8yle1wnD08Uj9LewhJ+pGqTCA8D/r8kADR48MkMwX7AWJVS9l6v:pnea0VtXz8Gq483RZ/MIn

Score

N/A

Malware Config

Signatures

Files

6a08ec10bcd0d6a99965076d17623e8cf14390d2161e021491413339a945a8ed
.exe windows x86

d6638bb549c7f94e43c4b8552e866e6b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowVisible
CopyIcon
CountClipboardFormats
GetLastActivePopup
ExcludeUpdateRgn
GetWindowPlacement
OpenInputDesktop
EnableWindow
DrawCaption
CopyAcceleratorTableA
VkKeyScanW
SetDebugErrorLevel
GetClipboardData
RegisterWindowMessageW
CheckDlgButton
AppendMenuW
TranslateAcceleratorW
CharLowerA
ShowWindow
CopyImage
PeekMessageW
SetDlgItemTextW
PostQuitMessage
DestroyIcon
MessageBoxW
DefWindowProcW
CreateWindowExW
FindWindowExW
SetScrollPos
GetMenuState
LoadBitmapW
SetWindowLongW
LoadImageW
GetDlgItem
DrawIconEx
SystemParametersInfoW
GetFocus
OpenClipboard
FlashWindow
SetTimer
PtInRect
KillTimer
TranslateMessage
GetDlgItemTextW
CharUpperW
EnableMenuItem
FindWindowW
CloseClipboard
GetSubMenu
GetSysColor
GetClientRect
LoadCursorW
ValidateRect
IsIconic
GetMenu
CreateDialogParamW
DispatchMessageW
ScreenToClient
CreateIcon
RegisterClassExW
GetWindow
SetClipboardData
RemovePropW
EndPaint
LoadIconW
SetMenuItemInfoW
MoveWindow
EndDialog
DestroyMenu
SetPropW
GetKeyState
LoadStringW
ClientToScreen
LoadAcceleratorsW
SendMessageW
GetCursorPos
LoadMenuW
GetForegroundWindow
IsChild
PostThreadMessageW
IsCharAlphaNumericA
ReleaseDC
SetMenu
InsertMenuW
SetScrollRange
MessageBeep
CreatePopupMenu
SetDlgItemInt
IsWindowEnabled
CreateIconIndirect
CharToOemA
CharLowerW
SystemParametersInfoA
PostMessageW
CheckMenuItem
GetMenuItemInfoW
SendDlgItemMessageW
EnumChildWindows
CreateDialogIndirectParamW
SetForegroundWindow
GetSystemMenu
GetDlgItemInt
IntersectRect
IsDlgButtonChecked
GetMessageW
DestroyWindow
CopyRect
CharToOemBuffW
GetComboBoxInfo
GetDesktopWindow
IsCharAlphaW
TrackPopupMenu
GetWindowTextW
GetParent
SetWindowTextW
GetPropW
WindowFromPoint
RegisterClipboardFormatW
GetMenuItemID
SetFocus
GetIconInfo
OemToCharBuffA
ExitWindowsEx
OemToCharA
CallWindowProcW
CharToOemBuffA
DeleteMenu
DrawMenuBar
EmptyClipboard
IsCharUpperW
InvalidateRect
IsDialogMessageW
GetWindowThreadProcessId
InsertMenuItemW
BeginPaint
SetWindowPos
GetMenuItemCount
IsWindow
RedrawWindow
GetSystemMetrics
FillRect
DialogBoxParamW
SetCursor
ScrollWindowEx
RegisterClassW
DefWindowProcA
DefDlgProcW
ToAsciiEx
SetWindowPlacement
GetClassNameW
IsWindowUnicode
GetQueueStatus
CloseWindow
EnumClipboardFormats
IsCharLowerW
FlashWindowEx
GetUserObjectInformationW
GetKeyboardLayoutNameW
GetDC
UpdateWindow
SetWindowsHookExW
SetWindowsHookExA
SetLayeredWindowAttributes
IsCharLowerA
SetUserObjectInformationA
SetWindowTextA
GetWindowTextLengthW
IsClipboardFormatAvailable

comdlg32

GetOpenFileNameW
ChooseFontW
GetSaveFileNameW
CommDlgExtendedError

shell32

SHGetPathFromIDListW
DragAcceptFiles
SHGetMalloc
ShellExecuteExW
ShellExecuteW
Shell_NotifyIconW
SHGetSpecialFolderLocation
DragQueryFileW
SHAddToRecentDocs
SHGetFileInfoW
SHGetDesktopFolder
SHChangeNotify
FindExecutableW
DragFinish
SHBrowseForFolderW
SHFileOperationW

ole32

CoTaskMemFree
CreateStreamOnHGlobal
DoDragDrop
CLSIDFromString
OleSetClipboard
CoInitializeEx
OleUninitialize
CoTaskMemAlloc
OleInitialize
CoCreateInstance

advapi32

CryptGenRandom
RegCreateKeyExW
AdjustTokenPrivileges
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyExW
GetFileSecurityW
RegDeleteValueW
IsTextUnicode
CryptAcquireContextW
RegCloseKey
RegSetValueExW
LookupPrivilegeValueW
SetFileSecurityW
RegOpenKeyExW
CryptReleaseContext
OpenProcessToken
RegEnumValueW

gdi32

GetTextExtentPoint32W
GetDeviceCaps
CreateFontW
ExtTextOutW
DPtoLP
CreateBitmap
CreateSolidBrush
DeleteDC
DeleteObject
GetTextFaceW
SetPixel
CreateCompatibleDC
GetTextMetricsW
SetTextColor
CreatePatternBrush
Polygon
MoveToEx
BitBlt
GetObjectW
CreateCompatibleBitmap
TextOutW
GetMapMode
GetPixel
TextOutA
SetMapMode
StretchBlt
LineTo
Rectangle
Polyline
SetBkColor
CreatePen
SelectObject

comctl32

ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Remove
ImageList_AddMasked
ImageList_Add
ImageList_Create
CreateStatusWindowW
InitCommonControlsEx
PropertySheetW

shlwapi

StrCmpLogicalW
StrStrIW
SHAutoComplete

uxtheme

IsThemeActive
IsAppThemed

kernel32

CreateDirectoryW
IsDBCSLeadByte
GetLocalTime
GetTempPathW
RaiseException
GetConsoleCP
HeapFree
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
SizeofResource
GetVersionExA
BeginUpdateResourceW
CreateEventW
FindFirstFileW
GetCurrentProcessId
HeapCreate
BackupRead
GetCurrentDirectoryW
GetSystemTimeAsFileTime
CreateFileA
DeviceIoControl
CreateThread
GetProcAddress
GetStdHandle
EndUpdateResourceW
Sleep
GetCommandLineA
FreeEnvironmentStringsW
ReleaseSemaphore
VirtualFree
RemoveDirectoryW
GetSystemTime
EnumResourceLanguagesW
RtlUnwind
SetLastError
GetTickCount
CreateSemaphoreW
GetFileAttributesW
GetProcessHeap
ExitThread
EnumResourceNamesW
ExpandEnvironmentStringsW
DeleteFileW
CreateFileMappingW
TerminateProcess
WriteFile
FlushFileBuffers
GetProcessAffinityMask
SetCurrentDirectoryW
GetFileInformationByHandle
HeapSize
GlobalFree
FreeLibrary
GetPriorityClass
UnhandledExceptionFilter
GetVolumeInformationW
LocalFileTimeToFileTime
GetCompressedFileSizeW
FindFirstChangeNotificationW
GetConsoleOutputCP
LoadLibraryA
GetModuleHandleW
FreeEnvironmentStringsA
TlsFree
GlobalAlloc
TlsSetValue
GetDateFormatW
GetVersionExW
UpdateResourceW
GetFullPathNameW
SetEnvironmentVariableA
ResetEvent
FileTimeToLocalFileTime
LoadResource
CompareStringW
GetLongPathNameW
GetACP
GetCurrentProcess
FindClose
ResumeThread
WriteConsoleW
GetCommandLineW
GetDiskFreeSpaceW
MapViewOfFile
GetStringTypeW
GetLocaleInfoA
CompareFileTime
FileTimeToSystemTime
OpenFileMappingW
FormatMessageW
WaitForSingleObject
WideCharToMultiByte
IsValidCodePage
SetFileAttributesW
CompareStringA
GetCPInfo
InitializeCriticalSection
SetStdHandle
GetModuleFileNameA
GetEnvironmentStrings
CreateMutexW
GlobalSize
TlsGetValue
SetFilePointer
DosDateTimeToFileTime
SetErrorMode
FindResourceW
LCMapStringW
GetNumberFormatW
QueryPerformanceCounter
FindNextChangeNotification
ClearCommError
GlobalUnlock
GlobalUnWire
SetHandleCount
VirtualAlloc
GetCurrentThread
CheckRemoteDebuggerPresent
GetNamedPipeHandleStateA
WTSGetActiveConsoleSessionId
GetCommModemStatus
IsProcessInJob
GetFileTime
GlobalDeleteAtom
GetThreadIOPendingFlag
GetThreadTimes
GetProcessPriorityBoost
CancelDeviceWakeupRequest
GetThreadPriority
GetFileType
SetThreadPriority
CreateHardLinkW
SuspendThread
LocalFree
TlsAlloc
GetLogicalDrives
WaitForMultipleObjects
GetShortPathNameW
GlobalLock
SetEvent
GetFullPathNameA
GetTimeFormatW
HeapAlloc
SetPriorityClass
WriteConsoleA
GetEnvironmentStringsW
SetUnhandledExceptionFilter
CopyFileW
GetStartupInfoA
SetEndOfFile
DeleteCriticalSection
GetStringTypeA
LeaveCriticalSection
ReadFile
MulDiv
CreateFileW
UnmapViewOfFile
EnterCriticalSection
GetDriveTypeW
BackupSeek
SystemTimeToFileTime
LoadLibraryW
ReleaseMutex
GetOEMCP
GetCurrentThreadId
CloseHandle
SetFileTime
MoveFileW
FileTimeToDosDateTime
GetConsoleMode
LoadLibraryExW
GetLocaleInfoW
FindCloseChangeNotification
HeapReAlloc
GetLastError
MultiByteToWideChar
ExitProcess
InterlockedIncrement
InterlockedDecrement
LCMapStringA
IsDebuggerPresent

Sections

.text
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 856KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 674KB - Virtual size: 674KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6638bb549c7f94e43c4b8552e866e6b

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

comctl32

shlwapi

uxtheme

kernel32

Sections

.text Size: 51KB - Virtual size: 51KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 5KB - Virtual size: 856KB

.rsrc Size: 674KB - Virtual size: 674KB

.text
Size: 51KB - Virtual size: 51KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 5KB - Virtual size: 856KB

.rsrc
Size: 674KB - Virtual size: 674KB